Symantec Endpoint Detection and Response

Keep attacks from turning into breaches

Symantec EDR – aka ATP Endpoint – applies machine learning and behavioral analytics to detect and expose suspicious activity. It enables you to hunt for threats by searching for indicators of compromise across all endpoints in real time.

Symantec EDR prioritizes incidents allowing you to navigate endpoint activity records for a full forensic analysis of potential attacks.

You can contain suspicious events using advanced sandboxing, blacklisting, and quarantine; seal off potentially compromised endpoints during investigation with endpoint isolation. And, finally, delete malicious files and associated artifacts on all impacted endpoints.

Armed with this detailed record, you can conduct forensic investigations, respond quickly to incidents, and resolve breaches in a fraction of the time you would spend with conventional processes. Security Analytics is an advanced network forensics analysis and analytics tool enabling you to: